Security researchers have discovered a new variant of Phobos ransomware in the wild that uses an Office document for propagation. Named FAUST, the ransomware is the latest iteration of the Phobos family after Eking, Eight, Elbie, Devos, and 8Base....
AT&T researchers have come across a phishing attack that leveraged the Microsoft Teams chat group to push DarkGate malware onto victims’ systems. The attackers used a domain named .onmicrosoft.com to send phishing messages, tricking users into downloading a deceptive file....
The cybersecurity landscape has witnessed a new, sophisticated threat in the form of ApateWeb, a large-scale scareware and Potentially Unwanted Programs (PUPs) delivery campaign. Uncovered by Unit 42 researchers at Palo Alto Networks, the campaign is notable for its use of over 130,000 domains to propagate various forms of...
In recent years, the proliferation of advanced spyware has raised concerns about the privacy and security of smartphones. Among the most notorious examples is Pegasus, a sophisticated surveillance tool developed by the Israeli company NSO Group. In this article, we'll delve into how hackers can exploit smartphones with Pegasus...
Researchers discovered a new campaign by the North Korea-sponsored ScarCruft group targeting media organizations and high-profile experts in North Korean affairs. The campaign was first observed in December 2023 and was aimed at harvesting threat intelligence and defense strategies from organizations and experts....
Trend Micro observed the Water Curupira actively propagating the Pikabot loader malware as part of campaigns, more aggressively in Q4 2023. Water Curupira is a Black Basta ransomware affiliate....
The CISA and the FBI issued a joint advisory to warn organizations about a cybercriminal group named Scattered Spider, which has recently updated its TTPs to infiltrate targets....
FortiGuard Labs researchers recently encountered a new Lumma Stealer campaign that leverages YouTube channels for propagation. The attackers are strategically compromising YouTube accounts and uploading videos that pretend to offer cracked software for legitimate video editing tools such as Vegas Pro....
Security experts have unmasked a new trick adopted by the GULOADER malware to evade detection by antivirus software. The highly evasive shellcode downloader malware, which typically spreads through emails bearing ZIP archives or links containing a VBScript file, has been found leveraging Vectored Exception Handler (VEH)...
A new variant of DJvu ransomware called Xaro has been observed leveraging malware loader delivered via cracked software for propagation. According to researchers at Cybereason, the new variant is being deployed alongside various commodity loaders and infostealers to infect systems....
The NCSC and Korea's National Intelligence Service (NIS) have issued a joint report to warn organizations about new supply chain attacks that exploit a zero-day flaw in MagicLine4NX software. Codenamed Operation Dream Magic, these attacks are attributed to the North Korea-based Lazarus threat group....
Compilation of games that received fan translation in June 2023. Some of them got released exactly in June while the others aren't but received notable update
The Moscow-linked hacking group Armageddon remains one of the most active and dangerous threat actors targeting Ukraine during its war with Russia, according to recent research.